diff options
author | Jan Sonntag <jaso35@googlemail.com> | 2021-11-12 17:36:00 +0100 |
---|---|---|
committer | Jan Sonntag <jaso35@googlemail.com> | 2021-11-12 17:36:00 +0100 |
commit | 0b08f8b7418d657a8652bb5e41655a90efd5750e (patch) | |
tree | 263cd3f0e53e41fce79b4a7de878dbd8993d3018 /etc | |
parent | sort.py cleanup (diff) | |
download | firejail-0b08f8b7418d657a8652bb5e41655a90efd5750e.tar.gz firejail-0b08f8b7418d657a8652bb5e41655a90efd5750e.tar.zst firejail-0b08f8b7418d657a8652bb5e41655a90efd5750e.zip |
implement review suggestions
Diffstat (limited to 'etc')
-rw-r--r-- | etc/profile-m-z/openstego.profile | 15 |
1 files changed, 5 insertions, 10 deletions
diff --git a/etc/profile-m-z/openstego.profile b/etc/profile-m-z/openstego.profile index a495c3f49..f6622b38d 100644 --- a/etc/profile-m-z/openstego.profile +++ b/etc/profile-m-z/openstego.profile | |||
@@ -15,8 +15,8 @@ include disable-common.inc | |||
15 | include disable-devel.inc | 15 | include disable-devel.inc |
16 | include disable-exec.inc | 16 | include disable-exec.inc |
17 | include disable-interpreters.inc | 17 | include disable-interpreters.inc |
18 | include disable-proc.inc | ||
18 | include disable-programs.inc | 19 | include disable-programs.inc |
19 | include disable-passwdmgr.inc | ||
20 | 20 | ||
21 | mkfile ${HOME}/openstego.ini | 21 | mkfile ${HOME}/openstego.ini |
22 | whitelist ${HOME}/openstego.ini | 22 | whitelist ${HOME}/openstego.ini |
@@ -24,20 +24,14 @@ whitelist ${HOME}/.java | |||
24 | whitelist ${PICTURES} | 24 | whitelist ${PICTURES} |
25 | whitelist ${DOCUMENTS} | 25 | whitelist ${DOCUMENTS} |
26 | whitelist ${DESKTOP} | 26 | whitelist ${DESKTOP} |
27 | include whitelist-common.inc | ||
28 | |||
29 | whitelist /usr/share/java | 27 | whitelist /usr/share/java |
28 | include whitelist-common.inc | ||
29 | include whitelist-run-common.inc | ||
30 | include whitelist-runuser-common.inc | ||
30 | include whitelist-usr-share-common.inc | 31 | include whitelist-usr-share-common.inc |
31 | include whitelist-var-common.inc | 32 | include whitelist-var-common.inc |
32 | 33 | ||
33 | # AppArmor breaks Java interpreter | ||
34 | ignore apparmor | ||
35 | |||
36 | caps.drop all | 34 | caps.drop all |
37 | |||
38 | # Makes fonts look grainy | ||
39 | #ipc-namespace | ||
40 | |||
41 | machine-id | 35 | machine-id |
42 | net none | 36 | net none |
43 | no3d | 37 | no3d |
@@ -50,6 +44,7 @@ notv | |||
50 | nou2f | 44 | nou2f |
51 | novideo | 45 | novideo |
52 | seccomp | 46 | seccomp |
47 | seccomp.block-secondary | ||
53 | shell none | 48 | shell none |
54 | tracelog | 49 | tracelog |
55 | 50 | ||